This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/kE5nlhJvTfIzLJZVXVNcpDU2q48.roa File: kE5nlhJvTfIzLJZVXVNcpDU2q48.roa (raw, json) Hash identifier: /vsjwwIo0DhK7AoxraX/xZA1x2+X4AIcHmKTnqNfNoE= Subject key identifier: 90:4E:67:96:12:6F:4D:F2:33:2C:96:55:5D:53:5C:A4:35:36:AB:8F Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe Certificate serial: 019AE329F2211BFD632DDAF11743934F705C Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/kE5nlhJvTfIzLJZVXVNcpDU2q48.roa Signing time: Wed 03 Dec 2025 07:42:48 +0000 ROA not before: Wed 03 Dec 2025 07:42:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 49556 IP address blocks: 5.159.49.0/24 maxlen: 24 5.159.54.0/24 maxlen: 24 45.94.213.0/24 maxlen: 24 89.46.217.0/24 maxlen: 24 185.239.0.0/24 maxlen: 24 188.212.99.0/24 maxlen: 24 188.240.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.mft rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e3:29:f2:21:1b:fd:63:2d:da:f1:17:43:93:4f:70:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe Validity Not Before: Dec 3 07:42:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=904e6796126f4df2332c96555d535ca43536ab8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2a:ff:8d:a9:6d:84:c3:fb:4b:63:0a:1d:a6: aa:da:5a:cf:21:2a:a0:09:5b:b5:e8:ef:32:11:84: 58:9e:4b:95:a5:1d:4b:24:8e:f5:73:0d:3b:57:e6: 62:c3:c7:88:14:6c:35:08:93:b7:b5:9d:bd:ad:32: a6:36:92:d3:15:1d:6f:64:04:c2:b6:1d:30:c4:2e: 4d:7e:3b:95:18:86:ad:1b:75:7d:fc:82:ca:47:cc: 10:74:da:0e:eb:8c:09:03:c7:63:a3:60:82:f5:04: 8b:0d:e0:eb:6d:27:4e:01:f7:62:7c:1c:04:06:9b: 5a:f3:76:02:54:4b:fc:d6:bd:95:3a:08:80:3a:23: 54:dc:66:61:51:fc:b7:7d:9d:57:32:3a:00:e8:e5: 9e:80:dc:3a:ee:a4:4a:87:c0:97:2f:2e:9e:e1:02: 0d:21:0d:34:3d:86:3f:77:13:07:55:90:c2:b0:1f: 0e:3d:25:f1:39:12:98:3b:d6:94:43:97:0c:37:c6: 8b:3e:99:07:97:d8:83:53:ab:26:27:cc:87:b5:e6: bb:b9:02:91:99:b0:e7:d7:5e:c9:df:f5:10:e2:dc: bf:25:7d:cf:1f:b1:79:2a:2e:60:97:92:70:d8:06: 59:74:23:8f:37:2d:85:8c:30:bb:63:b4:c1:36:90: f9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4E:67:96:12:6F:4D:F2:33:2C:96:55:5D:53:5C:A4:35:36:AB:8F X509v3 Authority Key Identifier: keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/kE5nlhJvTfIzLJZVXVNcpDU2q48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.159.49.0/24 5.159.54.0/24 45.94.213.0/24 89.46.217.0/24 185.239.0.0/24 188.212.99.0/24 188.240.196.0/24 Signature Algorithm: sha256WithRSAEncryption 86:cf:e8:0b:82:4e:c7:07:0a:69:cc:bb:5b:9e:c2:cc:88:15: 5e:17:de:b3:a9:a8:a6:c7:1e:15:40:07:a7:b0:e3:bd:1d:52: 75:e8:9f:53:ec:66:50:e7:1f:8e:a4:ec:66:bc:4c:4b:2c:13: a1:3f:cc:22:d1:bc:0c:ec:bf:8e:fa:51:9f:5d:d6:7d:46:38: b4:b7:0a:37:c5:b1:fb:be:9a:ad:ff:e7:3f:36:c1:92:e2:0c: 43:b6:5f:91:89:02:3e:96:65:bd:6a:89:40:b4:28:06:15:ad: a6:a1:ca:2c:bc:f9:6a:13:63:d1:7f:f8:fe:b4:69:e0:8a:1d: e7:bc:01:2f:26:96:87:e9:9b:f9:0a:82:e6:98:b6:b3:1f:62: f1:e6:55:3e:68:87:b0:8b:1a:f1:36:9c:7c:cd:b0:a8:94:2d: 13:4b:14:17:b1:80:16:f2:54:be:07:dd:58:6d:1b:60:0c:ae: ae:d5:c7:48:17:ee:b1:c6:7d:9c:e3:7b:9c:41:ce:a2:4a:6b: 0a:1d:b7:8b:5c:d4:51:df:b8:b3:20:1c:df:33:6d:ff:bb:e7: 12:6e:97:20:60:a1:61:16:01:70:9e:47:e3:06:7e:be:d2:b8: 96:9c:a5:1b:b2:2b:00:b8:2e:f9:ee:18:37:0e:08:f5:a4:80: 45:81:f1:ce -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZrjKfIhG/1jLdrxF0OTT3BcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz MjdlYmUwHhcNMjUxMjAzMDc0MjQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDRlNjc5NjEyNmY0ZGYyMzMyYzk2NTU1ZDUzNWNhNDM1MzZhYjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSr/jalthMP7S2MKHaaq2lrPISqg CVu16O8yEYRYnkuVpR1LJI71cw07V+Ziw8eIFGw1CJO3tZ29rTKmNpLTFR1vZATC th0wxC5NfjuVGIatG3V9/ILKR8wQdNoO64wJA8djo2CC9QSLDeDrbSdOAfdifBwE Bpta83YCVEv81r2VOgiAOiNU3GZhUfy3fZ1XMjoA6OWegNw67qRKh8CXLy6e4QIN IQ00PYY/dxMHVZDCsB8OPSXxORKYO9aUQ5cMN8aLPpkHl9iDU6smJ8yHtea7uQKR mbDn117J3/UQ4ty/JX3PH7F5Ki5gl5Jw2AZZdCOPNy2FjDC7Y7TBNpD59QIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFJBOZ5YSb03yMyyWVV1TXKQ1NquPMB8GA1UdIwQY MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt M2RmYTUxMGQ2YjE2LzEva0U1bmxoSnZUZkl6TEpaVlhWTmNwRFUycTQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2 LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQABZ8xAwQA BZ82AwQALV7VAwQAWS7ZAwQAue8AAwQAvNRjAwQAvPDEMA0GCSqGSIb3DQEBCwUA A4IBAQCGz+gLgk7HBwppzLtbnsLMiBVeF96zqaimxx4VQAensOO9HVJ16J9T7GZQ 5x+OpOxmvExLLBOhP8wi0bwM7L+O+lGfXdZ9Rji0two3xbH7vpqt/+c/NsGS4gxD tl+RiQI+lmW9aolAtCgGFa2mocosvPlqE2PRf/j+tGngih3nvAEvJpaH6Zv5CoLm mLazH2Lx5lU+aIewixrxNpx8zbColC0TSxQXsYAW8lS+B91YbRtgDK6u1cdIF+6x xn2c43ucQc6iSmsKHbeLXNRR37izIBzfM23/u+cSbpcgYKFhFgFwnkfjBn6+0riW nKUbsisAuC757hg3Dgj1pIBFgfHO -----END CERTIFICATE-----Generated at Sat Dec 6 18:39:29 2025 by rpki-client